Unknown Relevanssi vulnerabilities
3 known vulnerabilities affecting unknown/relevanssi.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2025-14719MEDIUMCVSS 4.9fixed in 4.26.02026-01-07
CVE-2025-14719 [MEDIUM] CWE-89 CVE-2025-14719: The Relevanssi WordPress plugin before 4.26.0, Relevanssi Premium WordPress plugin before 2.29.0 do
The Relevanssi WordPress plugin before 4.26.0, Relevanssi Premium WordPress plugin before 2.29.0 do not sanitize and escape a parameter before using it in a SQL statement, allowing contributor and above roles to perform SQL injection attacks
cvelistv5nvd
CVE-2024-9021MEDIUMCVSS 5.4fixed in 4.23.12024-10-08
CVE-2024-9021 [MEDIUM] CWE-79 CVE-2024-9021: In the process of testing the Relevanssi WordPress plugin before 4.23.1, a vulnerability was found
In the process of testing the Relevanssi WordPress plugin before 4.23.1, a vulnerability was found that allows you to implement Stored XSS on behalf of the Contributor+ by embedding malicious script, which entails account takeover backdoor
cvelistv5nvd
CVE-2023-7199MEDIUMCVSS 5.3fixed in 4.22.02024-01-29
CVE-2023-7199 [MEDIUM] CWE-639 CVE-2023-7199: The Relevanssi WordPress plugin before 4.22.0, Relevanssi Premium WordPress plugin before 2.25.0 all
The Relevanssi WordPress plugin before 4.22.0, Relevanssi Premium WordPress plugin before 2.25.0 allows any unauthenticated user to read draft and private posts via a crafted request
cvelistv5nvd